13 matches found
EUVD-2020-14285
Malware in sbrugna...
EUVD-2020-13904
Malware in sbrugna...
CVE-2020-21517
Cross Site Scripting XSS vulnerability in MetInfo 7.0.0 via the gourl parameter in login.php...
CVE-2020-21133
SQL Injection vulnerability in Metinfo 7.0.0 beta in member/getpassword.php?lang=cn=dovalid...
CVE-2020-21126
MetInfo 7.0.0 contains a Cross-Site Request Forgery CSRF via admin/?n=admin&c=index&a=doSaveInfo...
Cross site request forgery (csrf)
MetInfo 7.0.0 contains a Cross-Site Request Forgery CSRF via admin/?n=admin&c=index&a=doSaveInfo...
CVE-2020-21127
MetInfo 7.0.0 contains a SQL injection vulnerability via admin/?n=logs&c=index&a=dodel...
CVE-2020-21133
SQL Injection vulnerability in Metinfo 7.0.0 beta in member/getpassword.php?lang=cn&a=dovalid...
Sql injection
SQL Injection vulnerability in Metinfo 7.0.0 beta in member/getpassword.php?lang=cn&a=dovalid...
CVE-2020-21133
SQL Injection vulnerability in Metinfo 7.0.0 beta in member/getpassword.php?lang=cn&a=dovalid...
Cross site scripting
Cross Site Scripting XSS vulnerability in MetInfo 7.0.0 via the gourl parameter in login.php...
CVE-2020-21517
Cross Site Scripting XSS vulnerability in MetInfo 7.0.0 via the gourl parameter in login.php...
CVE-2020-21517
MetInfo 7.0.0 is affected by a Cross‑Site Scripting (XSS) vulnerability exploitable via the gourl parameter in login.php. The issue is identified as CVE-2020-21517. Provided sources consistently describe the vulnerable entry as MetInfo’s login flow accepting gourl input that can be manipulated to...